Improve authentication in example and readme (#78)

* Improve authentication in example

The example app currently allows all requests. This small update demonstrates how to actually perform authentication, including rejection by calling `next()` with an error message string.

* Update README.md

Make the authentication example actually authenticate.

* Update README.md

* Update index.js

Co-authored-by: Gabriel Csapo <[email protected]>

README.md

@@ -131,11 +131,17 @@ const repos = new Server(path.resolve(__dirname, 'tmp'), {
     autoCreate: true,
     authenticate: ({type, repo, user}, next) => {
       if(type == 'push') {
+        // Decide if this user is allowed to perform this action against this repo.
         user((username, password) => {
           console.log(username, password);
-          next();
+          if (accountName === '42' && password === '42') {
+            next();
+          } else {
+            next('wrong password');
+          }
         });
       } else {
+        // Check these credentials are correct for this user.
         next();
       }
     }

example/index.js

@@ -27,11 +27,17 @@ const repos = new Server(path.normalize(path.resolve(__dirname, 'tmp')), {
     authenticate: ({ type, repo, user, headers }, next) => {
       console.log(type, repo, headers); // eslint-disable-line
       if(type == 'push') {
+        // Decide if this user is allowed to perform this action against this repo.
         user((username, password) => {
           console.log(username, password); // eslint-disable-line
-          next();
+          if (accountName === '42' && password === '42') {
+            next();
+          } else {
+            next('wrong password');
+          }
         });
       } else {
+        // Check these credentials are correct for this user.
         next();
       }
     }